India’s National Internet Registry Database is Selling Online with Other Organisation too

Now this is going to be worst things for Indian cyber space, as researcher found some of the very important and critical infrastructure of India’s database selling on dark web.Security researcher from Seqrite’s Cyber Intelligence Labs along with seQtree InfoServices in there research found an advertisement of selling server access and database dump of India’s National Internet Registry: IRINN (Indian Registry for Internet Names and Numbers) which comes under NIXI (National Internet Exchange of India).

The database is been put on sale with a quotation for 15BTC ($61500 approx).After this, researcher have dig up further to gather more information. Somehow they managed to get some of the samples of the database and screenshot of account access. (Check below)

Who got affected?In the list almost every govt and private IT infrastructure has been affected, the list is not so long but organisation that may have been affected can damage whole internet within a country.Some major organisation and ISP that may be have been compromised areUIDAI (Aadhaar), DRDO, ISRO, ISAAC, Employee’s Provident Fund Organisation, Indian State Government Portal, Vikram Sarabhai Space Centre, National Scientists for Antarctic and Ocean Research, ISP- Aircel, Idea Cellular, BSNL Spectranet, Sify, Your Broadband, Tikona, Hathway etc.. and here are some financial organisation too – SBI, Master Card/Visa, Bombay Stock Exchange (BSE), HDFC, IDBI Bank, ICICI prudential Mutual fund, Federal Bank, BNY Mellon, Royal Bank of Scotland, Dena Bank, Canara Bank, IDFC Bank, Edelweiss Tokio. Not only this some other firms are also there – Flipkart, Wipro, VMWare, TCS, Zoho, E&Y.As you can see the list, which is makes you scared for your own data because you may have used these organisations or firm service in past.If hacker have potentially gained fully access in all the above list then this would be biggest cyber threats in a country. This is worst situation because attacker might have access to internal sensitive documents uploaded by IRINN users which may contain confidential information about the research.

About This Site

This site is provided free, as is, without support and without ads. It is useful for Security teams who need to keep up to date with Infosec news. Information is automatically fetched and there is no guarantee of accuracy on any content on this site.